CVE-2020-15023

Published: Dec 11, 2020Modified: Nov 21, 2024

5.9

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.2 / Impact: 3.6

Source: NVD

Description

Askey AP5100W devices through AP5100W_Dual_SIG_1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted (and even failed) WPS authentication attempt, it is possible to brute force the overall authentication exchange. This allows an attacker to obtain the recovered WPS PIN in minutes or even seconds, and eventually obtain the Wi-Fi PSK key, gaining access to the Wi=Fi network.

Affected (1)

Products: Askey: Ap5100w Firmware

1 product

Ap5100w Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Askey Ap5100w Firmware	Up to 1.01.097

Running on/with	Platform Versions
Askey Ap5100w	All versions

Related CWEs

Use of Insufficiently Random Values

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

References (6)

https://medium.com/csg-govtech/bolstering-security-how-i-breached-a-wifi-mesh-access-point-from-close-proximity-to-uncover-f8f77dc3cd5d

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.askey.com.tw/Products/wifi.html

Source: cve@mitre.org

ProductVendor Advisory

https://www.askey.com.tw/incident_report_notifications.html

Source: cve@mitre.org

Vendor Advisory

https://medium.com/csg-govtech/bolstering-security-how-i-breached-a-wifi-mesh-access-point-from-close-proximity-to-uncover-f8f77dc3cd5d

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.askey.com.tw/Products/wifi.html

Source: af854a3a-2127-422b-91ae-364da2661108

ProductVendor Advisory

https://www.askey.com.tw/incident_report_notifications.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.